AMENDMENTS TO THE CLAIMS 



1 . (Currently Amended) A method comprising: 

registering a first party and a second party with a database at a server, wherein the 
first ptHMr- pai ty is registered as a party relying on a s e co nd party's digital 
certificate of the second party ; 

receiving a request to revoke the digital certificate of the second party after 
reg isterin g the first party: 

authenticating the request in accordance with a pre-defined authenticating policy 
associated with the digital certificate of the second party, and generating 
an authorization certificate by a rev ok er of digital certificates; 

sending the authorization certificate to the first party, the authorization certificate 
including a revoker certificate associated with the revoker; 

revoking the second party's d igital certificate after registering the first party, 
wherein the revocation is performed according to in accordance with a 
revocation policy; and 

initiating communication with the first party to indicate that the second party's 
digital certificate has been revoked, wherein the communication includes 
notifying the first party that the second party's digital certificate has been 
revoked, wherein the notification is further sent to other parties registering 
with the database as relying on the second party's digital certificate of the 
second party . 

2. (Cancelled) 
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3. (Previously Presented) The method of claim 2, wherein initiating communication 
with the first party further comprises sending a revocation message to a machine 
that is associated with the first party. 

4. (Previously Presented) The method of claim 3 further comprising verifying 
authenticity of the revocation message and modifying access control information 
to indicate the revocation of the second party's certificate. 

5. (Currently Amended) The method of claim irl^ wherein receiving the request to 
revoke the second party's digital certificate comprises accepting the request by 
authenticating a signature incorporated in the request with ene-ef a - fet-ef -the 
revoker certificate certificates associated with the second party's certificate . 

6. (Previously Presented) The method of claim 2, further comprising sending an 
email message to an email address for the first party. 

Claims 7-10 (Cancelled) 

1 1 . (Currently Amended) A system comprising: 

a server having an integrated circuit coupled with a storage medium via a bus, the 
server further having a registration database to register a first party and a 
second party, wherein the first pajFt- party is registered as a relying party for 

a s e eeHd party - ' - s - d igital certificate of the second party , the server - foi - th& r 
having to: 

receive a request to revoke the digital certificate of the second party after 

registering the first party: 
authenticate the request in accordance with a pre-defined authenticating policy 

associated with the digital certificate of the second party, and generating 
an authorization certificate by a revoker of digital certificates; 
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send the authorization certiticate to the first party, the authorization certificate 
including a revoker certificate associated with the revoker 

a revocation module to r evoke the digital certificate sec o nd party's certificate after 
t he first party is registered, wherein the revocation is -- p&f - formed - ae - e - erdmg 
te -in accordance with a revocation policy; and 

an interface to facilitate communication of the server with a communication 
network to initiate communication to indicate to the first party that the 
second party's digital certificate has been revoked, wherein the 
communication includes notifying the first party that the s e cond-party - s 
digital certificate has been revoked, wherein the notification is further sent 
to other parties registering with the database as relying on the second 
p arty's digital certificate of the second party . 
Claims 12-25 (Cancelled) 

26. (Currently Amended) A machine-readable storage medium comprising 
instructions which, when executed, further cause a machine to: 
registering r egister a first party and a second party with a database at a server, 
wherein the first paft- party is registered as a party relying on a second 

pa - rty - ' - s - digital certificate of the second party : 
receive a request to revoke the digital certificate of the second party after 

re gistering the first party: 
authenticate the request in accordance with a pre-defined authenticating policy 

associated with the digital certificate of the second party, and generating 

an authorization certi ficate by a revoker of di g ital certificates; 
send the authorization certificate to the first party, the authorization certificate 

including a revoker certificate associated with the revoker; 
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revoking revoke the second party's d igital certificate after registering the first 
p a r ty, wh erei n the revocation is performed according to in accordance 
with a revocation policy; and 

initiating initiate communication with the first party to indicate that the second 
party's digital certificate has been revoked, wherein the communication 
includes notifying the first party that the second party's digital certificate 
has been revoked, wherein the notification is further sent to other parties 
registering with the database as relying on the second party's digital 
certificate. 

27. (Cancelled) 

28. (Currently Amended) The machine-readable storage medium of claim-27 26. 
wherein initiating of the communication with the first party further comprises 
sending a revocation message to a machine that is associated with the first party. 

29. (Currently Amended) The machine-readable storage medium of claim 28, further 
comprising the machine associated with the first party verifying the authenticity 
of the revocation message and modifying access control information of the 
machine to indicate the revocation of the second party's digital certificate. 

30. (Currently Amended) The machine-readable storage medium of claim 26, wherein 
receiving the request to revoke the second party's digital certificate comprises 
accepting the request by authenticating a signature incorporated in the request 
with one ef-a - Mst of the r evoker < 
certificate. 
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3 1 . (Currently Amended) The machine-readable storage medium of claim 26, wherein 
the sef¥ef-initiating of the communication with a first party further comprises the 
seF¥e?-sending an email message to an email address for the first party. 

32. (Cancelled) 

33. (Currently Amended) The system of claim 11, wherein the communication 
network server is further to send a revocation message to a machine that is 
associated with the first party. 

34. (Currently Amended) The system of claim 32, wherein the revoking module server 
is further to accept the request by authenticating a signature incorporated in the 
request with one of a list of the r evoker certificates associated with the second 
party's certificate. 

35. (Previously Presented) The system of claim 1 1 , wherein the server is further to 
send an email message to an email address for the first party. 
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